| Tak sem našel jednu XSS slabinku :)
[link]
a jeste kdyz se pokusim o SQLi a vyjede my tato hláška : Warning: sqlite_query() [function.sqlite-query]: unrecognized token: "\" in E:\APACHE\Apache2\htdocs\xmenu3.php on line 119
nevíte co to znamená ?
(odpovědět) | | Matesz1 | 90.176.181.* | 18.8.2011 13:06 |
|
|
|
| Webcruiser nasel toto, ale napr. s Havij testem to nevede take nikam ..pise to chyby..
--
* URI SQL Injection
[link]
KeyWord: Index
Injection type: Integer
-
[link]
KeyWord: Index
Injection type: String
-
[link]
KeyWord: Index
Injection type: String
-
(odpovědět) | |
|
|
| Sorry,to sem napsal špatně,ta hláška byla bratránkova gymplu - [link]
(odpovědět) | | Matesz1 | 90.176.181.* | 18.8.2011 18:25 |
|
|
|
| Tak jeste nejake XSS
[link]
A jedna chyba PHP
.
PHP multipart/form-data denial of service
Vulnerability description
This alert was generated using only banner information. It may be a false positive.
When you send a POST request to a PHP script with the content-type of multipart/form-data and include a list of files in that request, PHP will create a temporary file for each file from the request. PHP will create those files regardless if the script can handle file uploading or not. After the script was executed, the temporary files will be deleted. The problem is that you can include a very large number of files in the request. PHP will need to create those files before the script is executed and delete them afterwards.
The denial of service condition appears when you create a bunch of requests, each containing a large number (15000+) of files. When you send these requests to the web server, the web server collapses and stops responding because it has to process (create & delete) an insane number of files in a very short period of time. Any website that runs PHP and where file uploading is enabled (which is the default configuration) is vulnerable. You don't need to have a file upload script.
Affected PHP versions (up to 5.3.0).
This vulnerability affects Web Server.
Discovered by: Scripting (Version_Check.script).
The impact of this vulnerability
Denial of service.
Attack details
Current version is : PHP/5.2.6
(odpovědět) | |
|
|
| nechci vam do toho mluvit ale s havijem opravdu nejste total haXoři xD
(odpovědět) | | Joooohny | 213.220.198.* | 3.5.2012 14:43 |
|
|
|
| co je to Havij? :D
----------
hack or be hacked :-) .. by greyhats
(odpovědět) | |
|
|
| Výše si račte povšimnou krásného příkladu n00bů, script kidies a jak by řekli Anoni kinderů.
Nechte toho a jděte se raději učit do školy.
Havij a ani jiné programy, zejména ty pro windows opravdu nevedou k žádnému pokroku a už vůbec s nima nejste cool a o to méně jste "hackeři".
(odpovědět) | | AnonZ | 88.100.152.* | 5.5.2012 21:25 |
|
|
|
| Jmenuju se AnonZ a jsem idiot
(odpovědět) | | AnonZ | 198.96.155.* | 6.5.2012 18:39 |
|
|
|
